run commands Archives

Winsage

June 25, 2026

PowerToys replaced tools I used to install on every Windows PC

Raycast for Windows, a productivity app, was initially a valuable tool for launching applications and executing actions quickly. However, the introduction of the Command Palette in Microsoft PowerToys provided similar functionality, leading to Raycast being less essential for the user's needs. The user found that the Command Palette effectively served as a fast app launcher, integrating well with other PowerToys features. The user also transitioned from GlazeWM, a tiling window manager, to FancyZones in PowerToys for better window management, as FancyZones offered more tailored window layout options. Additionally, Text Extractor in PowerToys streamlined the user's optical character recognition (OCR) tasks by allowing easy text extraction from images. Overall, PowerToys consolidated several utilities into one suite, enhancing the user's productivity while reducing the need for multiple separate applications.

Tech Optimizer

June 7, 2026

Implementing real-time change data capture with Debezium for Amazon Aurora PostgreSQL and Amazon RDS for PostgreSQL

Amazon Aurora PostgreSQL-Compatible Edition and Amazon RDS for PostgreSQL now support native streaming replication, allowing data changes to flow from source databases. Organizations often struggle to capture and propagate these changes in real time without affecting database performance. Traditional ETL pipelines can introduce significant delays, leading to outdated data and missed opportunities. Debezium is an open-source platform for change data capture (CDC) that monitors databases and streams changes to applications or data pipelines, enabling real-time data synchronization. The CDC solution combines PostgreSQL's logical replication with Debezium's change capture framework, focusing on Amazon Aurora for PostgreSQL. To implement this solution, logical replication must be enabled on Amazon Aurora through DB cluster parameter groups. Debezium connectors monitor the database's Write-Ahead Logging (WAL) via logical replication slots, converting transaction logs into structured event streams. Key components of the solution include: - Amazon Aurora for PostgreSQL as the source database with logical replication enabled. - A Debezium PostgreSQL connector running on MSK Connect for change capture. - Amazon MSK for message streaming. - An Amazon EC2 instance for testing and consuming change events. Steps to implement the solution include: 1. Creating an Amazon Aurora for PostgreSQL DB cluster and enabling logical replication. 2. Creating an Amazon MSK serverless cluster. 3. Setting up an Amazon EC2 instance to install Kafka and connect to the database. 4. Creating a custom plugin for Amazon MSK to replicate changes from RDS for PostgreSQL. 5. Uploading the custom plugin to an Amazon S3 bucket. 6. Storing credentials in AWS Secrets Manager and creating an IAM role for MSK Connect. 7. Testing the solution by verifying data replication and monitoring real-time changes. Monitoring can be done through CloudWatch Logs and the MSK Connect console, addressing common issues like replication slot lag and connector failures. To avoid charges, resources created during the implementation should be deleted in the correct order.

Tech Optimizer

May 4, 2026

Wiz ZeroDay.Cloud Event Reveals 20-Year-Old PostgreSQL Vulnerabilities

Cybersecurity researchers at Wiz’s ZeroDay.Cloud event in London exploited two significant vulnerabilities in PostgreSQL, tracked as CVE-2026-2005 and CVE-2026-2006, which were disclosed on May 4, 2026. The vulnerabilities were found in the pgcrypto extension, affecting public-key decryption and symmetric decryption functions. CVE-2026-2005 allows privilege escalation via a buffer overflow during public-key decryption, while CVE-2026-2006 enables attackers to corrupt memory through inadequate checks in symmetric decryption. PostgreSQL has released patches for these vulnerabilities across versions 14.21 to 18.2, and MariaDB addressed a related issue in versions 11.4.10 and 11.8.6. Database administrators are advised to apply updates and audit logs for suspicious activity.

AppWizard

April 5, 2026

10 Hacks Every Steam Gamer Should Know

- To maintain privacy on Steam, users can adjust their profile visibility settings under Steam > Settings > Account > Privacy Settings. - Steam allows family sharing of game libraries with up to five individuals in the same household through Steam > Settings > Family. - Users can customize game operations by entering commands in the Launch options box found in Properties > General of a game. - Steam enables users to add alternative storage locations for games via Steam > Settings > Storage and move games to optimize performance. - Download speed limits can be set in Steam under Settings > Downloads to ensure internet bandwidth is available for other activities. - Users can switch download servers in Steam by selecting a different server in Settings > Downloads to potentially improve download speeds. - Big Picture Mode can be activated in Steam under Settings > Interface for a user-friendly interface when using a gamepad. - Gamepad controls can be remapped by accessing Properties > Controller > Controller Configuration for any game in the library. - SteamDB provides insights into future sales, trending titles, and upcoming releases based on historical data. - The FPS counter can be enabled in Steam under Settings > In Game to monitor performance metrics like CPU, GPU, and RAM usage during gameplay.

Winsage

February 25, 2026

PowerToys Command Palette is already better than Windows Search — the gap is about to widen

Microsoft offers two alternatives to the built-in Windows 11 search feature: PowerToys Run and Command Palette. PowerToys Run is a versatile launcher that allows users to search for files, settings, websites, and execute terminal commands. Command Palette functions similarly to PowerToys Run and macOS Spotlight, enabling users to search their PC, run commands, and open webpages. A recent update on GitHub introduced a lightning-fast mode for these tools, which reduces visual distractions during result list updates, selects the first interactable result promptly, removes selection indicator animations, and adds a "Results" section header for consistent visuals. The latest version of PowerToys also includes a new utility called "CursorWrap," which allows the mouse cursor to wrap around the screen edges, with options for horizontal or vertical use.

Winsage

December 29, 2025

Microsoft Adds Sudo to Windows 11 24H2 for Seamless Elevated Commands

Microsoft has introduced the sudo command in Windows 11 version 24H2, allowing users to execute commands with elevated privileges directly from a standard command prompt or PowerShell window. Users can enable this feature via Settings under System > For Developers. Sudo can run commands in three modes: “in a new window,” “with input disabled,” and “inline.” The inline mode runs the elevated command in the same console session, preserving context and variables. Microsoft has open-sourced the project on GitHub, inviting community contributions. Sudo integrates with User Account Control (UAC) for security, ensuring every elevation request is vetted. It simplifies administrative tasks for software engineers and system administrators, particularly in corporate environments where full admin access is restricted. The feature works seamlessly in Windows Terminal and supports Azure integrations. While some users have reported compatibility issues, Microsoft emphasizes that sudo is a developer tool rather than a complete replacement for Linux's sudo. Future developments may include community-driven extensions and integration with Windows Subsystem for Linux (WSL).

Tech Optimizer

November 17, 2025

Dragon Breath Uses RONINGLOADER to Disable Security Tools and Deploy Gh0st RAT

The threat actor Dragon Breath, also known as APT-Q-27 and Golden Eye, has been observed using a multi-stage loader called RONINGLOADER to deploy a modified variant of the remote access trojan Gh0st RAT, primarily targeting Chinese-speaking users. The campaign employs trojanized NSIS installers disguised as legitimate applications, such as Google Chrome and Microsoft Teams. The infection chain utilizes various evasion techniques, including a legitimately signed driver, custom Windows Defender Application Control policies, and manipulation of the Microsoft Defender binary. RONINGLOADER's attack chain involves delivering a DLL and an encrypted file labeled "tp.png," which contains shellcode. It attempts to neutralize security products by terminating processes associated with popular antivirus solutions in the region. Specific actions are taken against Qihoo 360 Total Security, including blocking network communication, injecting shellcode into the Volume Shadow Copy service, and restoring firewall settings. For other security processes, RONINGLOADER directly writes a driver to disk to perform process termination. The malware aims to inject a rogue DLL into "regsvr32.exe" to conceal its activities and launch a next-stage payload into high-privilege system processes. The final payload is a modified version of Gh0st RAT, capable of communicating with a remote server, configuring Windows Registry keys, clearing Windows Event logs, and capturing keystrokes and clipboard contents. Additionally, two interconnected malware campaigns identified by Palo Alto Networks Unit 42 employed brand impersonation to deliver Gh0st RAT to Chinese-speaking users. The first campaign, Campaign Trio, occurred between February and March 2025, while the second, Campaign Chorus, detected in May 2025, impersonated over 40 applications. Both campaigns utilized complex infection chains and trojanized installers hosted on domains that circumvented network filters. The second campaign also involved an embedded Visual Basic Script for launching the final payload through DLL side-loading.

Winsage

October 11, 2025

6 Windows Task Scheduler tricks I use instead of third-party apps

Windows Task Scheduler automates various processes without third-party applications, enhancing productivity and system performance. It can manage tasks such as reminders, cleaning, maintenance, automated backups, script execution, event-based automation, and power management. Users can create basic tasks with triggers like specific dates or system events, allowing for efficient reminders and scheduled maintenance. Task Scheduler facilitates backup processes using commands like Robocopy, ensuring reliable data management. It supports script automation in multiple programming languages and offers event-based triggers for routine tasks. Additionally, it allows for custom power management, automating shutdowns and other commands based on user-defined criteria. Overall, it serves as a versatile tool for automating numerous functions within the Windows operating system.

BetaBeacon

October 6, 2025

Android and Windows gamers worldwide potentially affected by bug in Unity game engine

A vulnerability, known as CVE-2025-59489, has been discovered in the Unity engine, widely used in game development. The bug could allow malicious files to take control of permissions granted to Unity games and run commands on a victim's device. The vulnerability primarily affects Android, Windows, Linux, and MacOS systems, but not iOS devices or gaming consoles. Unity has released fixes for the vulnerability, with no evidence of exploitation so far. Microsoft advises users to uninstall vulnerable apps and games temporarily, while Steam has announced measures to block potentially malicious command line parameters in Unity games. The bug was reported by a researcher at GMO Flatt Security, who praised Unity for promptly addressing the issue. Users are encouraged to update their software to protect against potential threats.

Tech Optimizer

September 12, 2025

Shamos malware tricks Mac users with fake fixes

A new malware campaign targeting Mac users has been identified, featuring a variant called Shamos, part of the Atomic macOS Stealer (AMOS) family, created by the cybercriminal group COOKIE SPIDER. The malware spreads through deceptive tactics that lure victims to counterfeit websites or GitHub repositories, where they are tricked into executing a command in Terminal that downloads Shamos, bypassing macOS Gatekeeper protections. Once installed, Shamos seeks sensitive information such as Apple Notes, Keychain items, browser passwords, and cryptocurrency wallets, sending the stolen data to attackers along with additional malware. The fraudulent distribution of these "fixes" is facilitated through malvertising campaigns and imitation tech support sites. Victims are encouraged to execute commands that download malicious scripts, which can capture passwords and disable file protections, allowing Shamos to maintain control even after system restarts. To protect against Shamos, users are advised to avoid running unfamiliar commands, steer clear of sponsored search results, be cautious with GitHub projects, use strong antivirus protection, consider personal data removal services, and keep macOS updated to close vulnerabilities.